9836587

System and Method for Granting Permission for a Machine Action

PublishedDecember 5, 2017
Assigneenot available in USPTO data we have
Technical Abstract

Patent Claims
18 claims

Legal claims defining the scope of protection, as filed with the USPTO.

1

1. A method performed within a network accessible server-based architecture for granting permission for a machine action comprising: receiving, at one or more processing devices, a machine generated request associated with a source, where the machine generated request comprises request parameters that include a requested machine action, a target recipient of the requested machine action, and the source of the requested machine action; deriving a request hash of the request parameters; accessing with the one or more processing devices a stored set of capabilities on a memory operably coupled to the one or more processing devices, the memory comprising a device for storing and retrieving data, where each of the one or more capabilities comprises a capability hash of permission parameters that include a permissible action, a specified recipient of the permissible action, and a specified source of the permissible action; for each of the one or more capabilities in the stored set of capabilities: determining with the one or more processing devices whether the request hash of the request parameters associated with the machine generated request match the capability hash of the permission parameters associated with the capability; and granting permission to apply the machine generated request to the target recipient when a match of the request hash and the capability hash is determined wherein at least one of the source and the target recipient reside outside of the network accessible server-based architecture.

2

2. The method for granting permission for a machine action of claim 1 , where the source, the specified source, the target recipient and the specified recipient comprises any one or more of an identifier of an application, an identifier of a machine and an identification attribute.

3

3. The method for granting permission for a machine action of claim 1 , where the requested machine action comprises applying to the target recipient any one or more action of: creating, updating, deleting, messaging, applying software updates and reading an associated state.

4

4. The method for granting permission for a machine action of claim 1 , further comprising adding, deleting or modifying one or more capabilities to the stored set of capabilities.

5

5. The method for granting permission for a machine action of claim 1 , where any of the source, the specified source, the target recipient and the specified recipient is identified using a unique identifier.

6

6. The method for granting permission for a machine action of claim 1 , where any of the source, the specified source, the target recipient and the specified recipient comprises a symbolic name.

7

7. The method for granting permission for a machine action of claim 6 , further comprising resolving the symbolic name into a unique identifier.

8

8. The method for granting permission for a machine action of claim 7 , where the symbolic name is resolved into the unique identifier before a hash is calculated.

9

9. The method for granting permission for a machine action of claim 7 , where the symbolic name is resolved into a unique identifier before determining the match between the request hash and the capability hash.

10

10. A system implemented using a network accessible server-based architecture for granting permission for a machine action comprising: one or more processing devices; and a memory operably coupled to the one or more processing devices, the memory comprising a device for storing and retrieving data, wherein the memory stores instructions to be executed by the one or more processing devices, the instructions for configuring the system to: receive at the one or more processing devices a machine generated request, associated with a source, where the machine generated request comprises request parameters that include a requested machine action, a target recipient of the requested machine action, and the source of the requested machine action; derive a request hash of the request parameters; access with the one or more processing devices a stored set of capabilities on the memory, where each of the one or more capabilities comprises a capability hash of permission parameters that include a permissible action, a specified recipient of the permissible action, and a specified source of the permissible action; for each of the one or more capabilities in the stored set of capabilities: determine with the one or more processing devices whether the request hash of the request parameters associated with the machine generated request match the capability hash of the permission parameters associated with the capability; and grant permission to apply the machine generated request to the target recipient when a match of the request hash and the capability hash is determined wherein at least one of the source and the target recipient reside outside of the network accessible server-based architecture.

11

11. The system for granting permission for a machine action of claim 10 , where the source, the specified source, the target recipient and the specified recipient comprises any one or more of an identifier of an application, an identifier of a machine and an identification attribute.

12

12. The system for granting permission for a machine action of claim 10 , where the requested machine action comprises applying to the target recipient any one or more action of: creating, updating, deleting, messaging, applying software updates and reading an associated state.

13

13. The system for granting permission for a machine action of claim 10 , further comprising adding, deleting or modifying one or more capabilities to the stored set of capabilities.

14

14. The system for granting permission for a machine action of claim 10 , where any of the source, the specified source, the target recipient and the specified recipient is identified using a unique identifier.

15

15. The system for granting permission for a machine action of claim 10 , where any of the source, the specified source, the target recipient and the specified recipient comprises a symbolic name.

16

16. The system for granting permission for a machine action of claim 15 , further comprising resolving the symbolic name into a unique identifier.

17

17. The system for granting permission for a machine action of claim 16 , where the symbolic name is resolved into the unique identifier before a hash is calculated.

18

18. The system for granting permission for a machine action of claim 16 , where the symbolic name is resolved into a unique identifier before determining the match between the request hash and the capability hash.

Patent Metadata

Filing Date

Unknown

Publication Date

December 5, 2017

Inventors

Daniel CARDAMORE
Wadih Jean SHAIB

Want to explore more patents?

Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.

Citation & reuse

Analysis on this page is generated by Patentable — an AI-powered patent intelligence platform. AI-generated summaries, explanations, and analysis may be reused with attribution and a visible link back to the canonical URL below. Patent abstracts and claims are USPTO public domain.

Cite as: Patentable. “System and Method for Granting Permission for a Machine Action” (9836587). https://patentable.app/patents/9836587

© 2026 Patentable. All rights reserved.

Patentable is a research and drafting-assistant tool, not a law firm, and does not provide legal advice. Documents we generate are drafts for review by a licensed patent attorney.